You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
61 lines
1.3 KiB
YAML
61 lines
1.3 KiB
YAML
#
|
|
# Author: Hari Sekhon
|
|
# Date: Tue Feb 4 09:53:28 2020 +0000
|
|
#
|
|
# vim:ts=2:sts=2:sw=2:et
|
|
#
|
|
# https://github.com/HariSekhon/DevOps-Bash-tools
|
|
#
|
|
# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback
|
|
#
|
|
# https://www.linkedin.com/in/HariSekhon
|
|
#
|
|
|
|
# ============================================================================ #
|
|
# S e m g r e p G i t H u b W o r k f l o w
|
|
# ============================================================================ #
|
|
|
|
# Generates code scanning alerts in GitHub's Security tab -> Code scanning alerts
|
|
|
|
# https://semgrep.dev/docs/semgrep-ci/sample-ci-configs/#github-actions
|
|
|
|
---
|
|
name: Semgrep
|
|
|
|
on:
|
|
push:
|
|
branches:
|
|
- master
|
|
- main
|
|
paths-ignore:
|
|
- README.md
|
|
pull_request:
|
|
branches:
|
|
- master
|
|
- main
|
|
paths-ignore:
|
|
- README.md
|
|
workflow_dispatch:
|
|
inputs:
|
|
debug:
|
|
type: boolean
|
|
required: false
|
|
default: false
|
|
schedule:
|
|
- cron: '0 0 * * 1'
|
|
|
|
permissions:
|
|
actions: read
|
|
contents: read
|
|
security-events: write
|
|
|
|
concurrency:
|
|
group: ${{ github.ref }}-${{ github.workflow }}
|
|
cancel-in-progress: true
|
|
|
|
jobs:
|
|
semgrep:
|
|
if: github.event.repository.fork == false
|
|
name: Semgrep GitHub Security Tab
|
|
uses: HariSekhon/GitHub-Actions/.github/workflows/semgrep.yaml@master
|